The LDD Directory Lite plugin for WordPress has a security issue where it is vulnerable to Reflected Cross-Site Scripting in versions up to 3.3. This is because it does not properly clean the input and output, making it possible for attackers to insert harmful web scripts into pages if they can convince a user to click on a link.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
